Is Your Transcription Provider GDPR Compliant?
How do you know if your current transcription provider or virtual assistant is truly GDPR compliant? The answer may lie with ISO 27001.
As more and more organisations and businesses are looking to outsource their typing provision, how do you go about finding a GDPR compliant transcription service to handle your confidential/sensitive data?
Last year, when the General Data Protection Regulation (“GDPR” as it became known) came into effect, there was no “GDPR Compliance Accreditation Scheme”. With the law change, UK companies should have tightened up on security and re-evaluated their systems and processes. However, the key question is: have they?
One area that is vulnerable to data breaches is, of course, outsourced transcription. A lot of outsourced transcription companies or virtual assistants use statements such as: “We are GDPR compliant”. But have you taken these words on trust?
Unless you have done some due diligence, you might have inadvertently taken a huge leap of faith. Even if you have done due diligence, are you and your team confident that you know enough?
Despite the law in relation to GDPR being almost one year old, a recent article on Techrar.com in late January 2019 suggested that the:
“Majority of UK companies still aren’t GDPR-compliant”.
What to do?
So no matter whether you are a lawyer, clinician, accountant (or indeed a business), how would you know that a company is indeed GDPR compliant? How do you know that your data is safe and being handled correctly?
If you are looking for a transcription company (or currently employ one) what is the main question you need to ask? It lies in asking one simple question: “Are you ISO 27001 Certified”?
So what is ISO 27001?
ISO 27001 is an international recognised information security standard. It is designed to establish and maintain an effective systematic approach to managing data security and sensitive information. The Information Security Management System preserves data, confidentiality, integrity and availability of information by applying a risk management process.
The great thing with ISO 27001 is that it aligns so very well to GDPR. Leigh Ronczka from Pivot Point Security was asked:
“Can aligning with ISO 27001 or pursing/achieving ISO 27001 certification help you comply with the GDPR?
The short answer is “Yes”.
If you need to comply with the GDPR, and if data protection and security is needed, do not just hope for the best.
If you are already contracting with a transcription provider our questions to you would be:
- How do you know that transcription provider is GDPR compliant?
- Do they have ISO 27001. If not:
- What fall back plan do you have if there is a data breach?
- How would you explain this to your hierarchy if there is a data breach?
Our question would be: why take that risk? Would you risk sending data to any company that was not ISO 27001 certified?
If you are looking to outsourcing your transcription provision always demand ISO 27001 certification. It is the nearest thing we have to meet the GDPR compliance standard. Furthermore, it is audited by an independent auditor every year.
OutSec is ISO 27001 Certified
If you are looking for an online transcription company – look no further!
OutSec is the UK’s leading online transcription company and we are ISO 27001 certified. We are also Cyber Essentials certified.
If information, data security and confidentiality is important to you, do not just cross your fingers when outsourcing transcription to meet your typing needs.
Therefore, if you are agreeing a contract which deals with sensitive data, demand ISO 27001 and Cyber Essentials compliance. They are more than logos! These information security standards set the bar high. It takes constant review, challenge and action to receive and retain them. They also provide assurances that OutSec are indeed GDPR compliant.
There are not many transcription companies operating in the UK, who have achieved these standards. OutSec’s achievement of ISO 27001 demonstrates our company’s continual commitment to data security, customer service and quality in the delivery of our services.
OutSec is the UK’s leading online transcription company whose business has grown substantially since 2002. It is therefore one of the most successful transcription companies in the United Kingdom. OutSec provides secure outsourced transcription services to the medical, legal, property and surveying, media and interviews, inventories, financial, commercial, HR, recruitment and Executive Search sectors.
If you wish more details on OutSec’s services please feel free to call us on 01366 348088 and we will be very happy to help. You can also open a free account here.
Please feel free to like and share this article on your favourite social media channels!